-
July 24th, 2008, 02:30 PM
#1
DNS flaw: attack code published
-
July 24th, 2008, 03:40 PM
#2
Junior Member
Well, it was just a matter of time he he although the question could be if that attack code could be available as it's now if the details of the DNS flaw weren't leaked
-
July 25th, 2008, 01:44 AM
#3
OpenDNS--try it
it is free and much faster than your ISP's DNS servers
http://www.opendns.com/
(it does NOT suffer from this new DNS poisoning vulnerability)...for now
edit: there is no available linux client updater unfortunately
Last edited by C:\Saw; July 25th, 2008 at 01:50 AM.
"...to give correctly is to give them what they need from us, for it would not be skillful to bring gifts to anyone that are in no way needed."
--Socrates
*Einstein Would Be Proud*
-
July 25th, 2008, 03:48 AM
#4
Junior Member
Originally Posted by C:\Saw
edit: there is no available linux client updater unfortunately
Actually, there is, you can use inadyn, check here:
http://forums.opendns.com/comments.php?DiscussionID=157
and here:
http://fwennberg.blogspot.com/2007/0...ned-linux.html
-
July 25th, 2008, 02:23 AM
#5
I changed to OpenDNS a while ago after finding out that RoadRunner (TWC) still hasn't patched... I just checked, and they're still vulnerable (TWC, that is)...
-
July 28th, 2008, 11:21 PM
#6
There an easy way to tell if my ISP (comcast) is vuln or not?
Or should I just install openDNS to be on the safe side (used to have it, worked great)
-
July 28th, 2008, 11:57 PM
#7
There an easy way to tell if my ISP (comcast) is vuln or not?
Check http://www.doxpara.com/
-
July 29th, 2008, 07:02 AM
#8
Otherwise try this:
https://www.dns-oarc.net/oarc/services/dnsentropy
From what I can gather Comcast is supposed to be OK now.
I have also heard that these tests can produce false negatives due to interactions between the test and other security measures in place on the servers?
-
July 30th, 2008, 04:07 PM
#9
Member
"It's funny," he said.(HD Moore of metasploit fame) "I got owned."
At least he has a sense of humor. His company, BreakPoint, uses AT&T which got owned presumably via his metasploit program.
http://www.networkworld.com/news/200...-a-victim.html
Tachyon
|-----|Alcohol is my anti-drug |-----|
-
July 30th, 2008, 10:09 PM
#10
It's a far more serious problem than he is letting on here:
http://www.thetechherald.com/article...-was-NOT-Pwned
I have several customers that are having serious mail problems because ATT is, I believe, being attacked. A tech at ATT said he can have me change my customers DNS info but that'll only last so long as the extra load on those servers will cause a DOS also. So...
Hmmm.
Gotta love service providers.
Mankind have a great aversion to intellectual labor; but even supposing knowledge to be easily attainable, more people would be content to be ignorant than would take even a little trouble to acquire it.
- Samuel Johnson
Similar Threads
-
By SDK in forum *nix Security Discussions
Replies: 0
Last Post: September 18th, 2004, 04:56 PM
-
By moxnix in forum Microsoft Security Discussions
Replies: 1
Last Post: April 26th, 2004, 10:25 PM
-
By qod in forum The Security Tutorials Forum
Replies: 18
Last Post: January 5th, 2004, 02:30 PM
-
By -DaRK-RaiDeR- in forum Newbie Security Questions
Replies: 9
Last Post: December 14th, 2002, 08:38 PM
-
Replies: 1
Last Post: July 15th, 2002, 03:46 AM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|